CVE-2025-8131

A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-8131 Tenda AC20 SetStaticRouteCfg stack-based overflow

A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-8131 Tenda AC20 SetStaticRouteCfg stack-based overflow

A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-8131

CVE-2025-8131 affects Tenda AC20 firmware 16.03.08.05. A stack-based buffer overflow occurs in the processing of the list parameter in /goform/SetStaticRouteCfg, enabling remote exploitation. Multiple sources confirm the vulnerability and public exploit availability. Affected devices can crash or...

CVE-2025-8060

A vulnerability has been found in Tenda AC23 16.03.07.52 and classified as critical. Affected by this vulnerability is the function sub46C940 of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack ca...

NewStart CGSL MAIN 7.02 : binutils Vulnerability (NS-SA-2025-0113)

The remote NewStart CGSL host, running version MAIN 7.02, has binutils packages installed that are affected by a vulnerability: - A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects the function disassemblebytes of the file binutils/objdump.c...

Siemens SCALANCE LPE9403 Stack-Based Buffer Overflow (CVE-2025-40579)

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices are vulnerable to a stack-based buffer overflow. This could allow a non- privileged local attacker to execute arbitrary code on the device or to cause a denial of service condition...

CVE-2025-40596

A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service DoS or potentially results in code execution...

CVE-2025-33076

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...

CVE-2025-33077 IBM Engineering Systems Design Rhapsody code execution

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...

CVE-2025-33077

IBM Engineering Systems Design Rhapsody is affected by CVE-2025-33077: stack-based buffer overflow due to improper bounds checking in versions 9.0.2, 10.0, and 10.0.1. A local attacker could overflow a buffer and execute arbitrary code. The IBM Security Bulletin confirms the affected versions and...

CVE-2025-33076

CVE-2025-33076 affects IBM Engineering Systems Design Rhapsody, specifically versions 9.0.2, 10.0, and 10.0.1. The vulnerability is a stack-based buffer overflow caused by improper bounds checking, allowing a local user to overflow a buffer and execute arbitrary code. The IBM Security Bulletin co...

Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2025-33076

Summary IBM Engineering Systems Design Rhapsody was vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system. Vulnerability Details CVEID:CVE-2025-33076 DESCRIPTION: IBM Engineering Systems...

CVE-2025-7921

Certain modem models developed by Askey has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to control the program's execution flow and potentially execute arbitrary code...

CVE-2025-8060 Tenda AC23 httpd setMacFilterCfg sub_46C940 stack-based overflow

A vulnerability has been found in Tenda AC23 16.03.07.52 and classified as critical. Affected by this vulnerability is the function sub46C940 of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack ca...

CVE-2025-8060 Tenda AC23 httpd setMacFilterCfg sub_46C940 stack-based overflow

A vulnerability has been found in Tenda AC23 16.03.07.52 and classified as critical. Affected by this vulnerability is the function sub46C940 of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack ca...

CVE-2025-8060

The CVE-2025-8060 entry concerns Tenda AC23 (firmware 16.03.07.52). A stack-based buffer overflow is triggered in the httpd component, specifically in setMacFilterCfg (function sub_46C940) by manipulating the deviceList argument. The vulnerability can be exploited remotely, and public exploit det...

PT-2025-30592 · Ibm · Engineering Systems Design Rhapsody

Name of the Vulnerable Software and Affected Versions: IBM Engineering Systems Design Rhapsody versions 9.0.2, 10.0, and 10.0.1 Description: IBM Engineering Systems Design Rhapsody is susceptible to a stack-based buffer overflow due to insufficient bounds checking. A local user can exploit this...

PT-2025-30589

Name of the Vulnerable Software and Affected Versions SonicWall SMA100 series Description A stack-based buffer overflow vulnerability in the web interface allows a remote, unauthenticated attacker to cause a Denial of Service DoS or potentially achieve code execution. Recommendations At the momen...

CVE-2025-7908

A vulnerability was found in D-Link DI-8100 1.0. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file /ddns.asp?opt=add of the component jhttpd. The manipulation of the argument mx leads to stack-based buffer overflow. The attack can be launched...